5 matches found
CVE-2025-24365
vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwardenrs. Attacker can obtain owner rights of other organization. Hacker should know the ID of victim organization in real case the user can be a part of the organization as an unprivileged user and be...
CVE-2025-24365
CVE-2025-24365 affects vaultwarden (unofficial Bitwarden-compatible server in Rust, previously bitwarden_rs). The description in connected sources shows an attacker can obtain owner rights of another organization by knowing the victim organization ID and being the owner/admin of a different organ...
PT-2021-5017
Name of the Vulnerable Software and Affected Versions Active Directory Domain Services affected versions not specified Description The issue is related to insecure privilege management in the Active Directory Domain Services component of the Windows operating system. This allows a remote attacker...
OTRS 授权问题漏洞
OTRS is an application from the German company OTRS. A service management software. An authorization issue vulnerability exists in OTRS, which arises from a product that allows resources to be locked without Owner rights and can be moved to a queue with rw rights for full control. The following...
CVE-2016-5374
NetApp Data ONTAP 9.0 and 9.1 before 9.1P1 allows remote authenticated users that own SMB-hosted data to bypass intended sharing restrictions by leveraging improper handling of the ownerrights ACL entry...